[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] problems with Qube3 (was Macintosh, AppleShare IP Users)
- Subject: Re: [cobalt-users] problems with Qube3 (was Macintosh, AppleShare IP Users)
- From: "Rodolfo J. Paiz" <rpaiz@xxxxxxxxxxxxxx>
- Date: Thu Apr 5 21:32:05 2001
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
At 4/5/01 06:37 PM -0500, you wrote:
One other very BASIC question I forgot to ask - since the Qube has no
montior, keyboard, etc., do I just log in as root via telnet?
Yes. Well, the first time anyway...
I strongly suggest that you take it upon yourself to make the installation
of OpenSSH pretty much top priority on your list. Telnet (and FTP, and
POP...) sends passwords in the clear so any network sniffer can grab your
password as it goes by. That's why FTP doesn't allow root (among other
reasons), and it is a wonderful way to get your machine hacked in a heartbeat.
Once you have basic functionality on the box, security should be your first
concern. I recommend the following as *required* functionality:
* OpenSSH (disable remote root login, ensure that only one or two users can
su to root)
* ipchains (packet filter firewall, explicitly accept stuff then deny all
remaining)
* Logcheck (www.psionic.com)
That oughta keep you busy for a couple of days. Then get back to us. :)
For a Windows SSH client, I suggest Putty. One .exe file, no install, free,
stable, small. Don't remember the website but in the worst case I can mail
it to you. :)
--
Rodolfo J. Paiz
rpaiz@xxxxxxxxxxxxxx